On Tue, 26 Oct 1999, TC Hazzard wrote:
> I have triple checked the config file for this list and tested posts and
> have not been able to post. My thought is that some devious person found
> out how to determine who was allowed to post and then proceeded to munge
> the headers to get their spam through.
That's possible, and another possibility is that the spammer found out
the name of the list-outgoing alias and posted directly to that. A
careful examination of the headers on one of the spam messages would tell.
Read the FAQ for suggestions on how to prevent discovery of the -outgoing
alias name. I have heard one suggestion that I haven't tried for using
the virtual user table to reject any external postings addressed to the
-outgoing, while still letting resend find it.